Description
nginx http proxy module does not verify peer identity of https origin server which could facilitate man-in-the-middle attack (MITM)
Remediation
References
Related Vulnerabilities
MySQL CVE-2014-2436 Vulnerability (CVE-2014-2436)
WordPress 5.0.x Cross-Site Request Forgery (5.0 - 5.0.3)
WordPress Plugin Coming Soon & Maintenance Mode Page Cross-Site Request Forgery (1.57)
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-6897)
WordPress Plugin Ivory Search-WordPress Search Cross-Site Scripting (4.7.1)